CVE-2011-1007

CVE-2011-1007 affects Best Practical Solutions RT prior to 3.8.9. The issue is a login redirect flaw that allows a physically proximate attacker to reuse the back button after logout to access credentials or previous session data. The impact is a partial disclosure through session re-use on an un...

Request Tracker 3.x < 3.8.9 Security Bypass and Information Disclosure

According to its self-reported version number, the Best Practical Solutions Request Tracker RT running on the remote web server is a version prior to 3.8.9. It is, therefore, potentially affected by the following vulnerabilities : - If an individual with a valid account logs out of Request Tracke...